7e99b817680baa38407ce129b8cd4c15

General

Target

7e99b817680baa38407ce129b8cd4c15
Size

767KB
MD5

7e99b817680baa38407ce129b8cd4c15
SHA1

86b5845060889f403879ef97a8093fcdb06f3d79
SHA256

8c5322fdb84cabbcf6184a57350b1304cbd2df012542da4850ab30ba43785465
SHA512

2752add4016a55c1d3341e10f55413c118633c7cf01f6c80ae256060a7f137a1ef7b351a2c2bb712523196e301ffc1938b173d8bceb6584b7de16b4a100219fa
SSDEEP

12288:bAxxTV8Cp9ZjqG69Sp5f47vZdW3xQszIolRe4KQhC82zAB/h7lkt6qrd6qaspKqx:0DVV7W/TWhQsz3RerQh72oJBkslsS/Da

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e99b817680baa38407ce129b8cd4c15

Files

7e99b817680baa38407ce129b8cd4c15
.exe windows:4 windows x86 arch:x86

0100e6e96b0f1de77e17314a5b73482e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCurrentProcessId
GetModuleHandleA
GetNumberFormatA
GetProcAddress
HeapFree
LoadLibraryA
ReadProcessMemory
VirtualAlloc
VirtualFree

setupapi

SetupDiGetClassDescriptionExW
SetupInstallServicesFromInfSectionExA
SetupSetDirectoryIdExA
SetupDiGetDriverInfoDetailA

user32

GetNextDlgTabItem
MapVirtualKeyW
MessageBoxExA
OemToCharBuffW
OpenDesktopW
GetKeyNameTextW
SetClipboardData
UnregisterClassA
WaitMessage
WindowFromDC
CharUpperBuffW
GetKBCodePage
CloseClipboard
EnumDisplaySettingsExW
SendMessageTimeoutA
EnumDesktopsA
GetInputDesktop

msvcrt

time
isdigit
exit
__set_app_type
__p__commode
__getmainargs

Sections

.text
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 440KB - Virtual size: 440KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rata
Size: 269KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0100e6e96b0f1de77e17314a5b73482e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

setupapi

user32

msvcrt

Sections

.text Size: 39KB - Virtual size: 40KB

.data Size: 440KB - Virtual size: 440KB

.rata Size: 269KB - Virtual size: 272KB

.bss Size: - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 39KB - Virtual size: 40KB

.data
Size: 440KB - Virtual size: 440KB

.rata
Size: 269KB - Virtual size: 272KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 16KB - Virtual size: 16KB